Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-vyg9-hnp3-wye9
SummaryA flaw was found in openstack-mistral. By manipulating the SSH private key filename, the std.ssh action can be used to disclose the presence of arbitrary files within the filesystem of the executor running the action. Since std.ssh private_key_filename can take an absolute path, it can be used to assess whether or not a file exists on the executor's filesystem.
Aliases
0
alias CVE-2018-16849
1
alias GHSA-fqw7-c6vr-q29m
2
alias PYSEC-2018-92
Fixed_packages
0
url pkg:deb/debian/mistral@7.0.0-2
purl pkg:deb/debian/mistral@7.0.0-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mistral@7.0.0-2
1
url pkg:deb/debian/mistral@7.0.0-2?distro=trixie
purl pkg:deb/debian/mistral@7.0.0-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mistral@7.0.0-2%3Fdistro=trixie
2
url pkg:deb/debian/mistral@11.0.0-2?distro=trixie
purl pkg:deb/debian/mistral@11.0.0-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mistral@11.0.0-2%3Fdistro=trixie
3
url pkg:deb/debian/mistral@15.0.0-1?distro=trixie
purl pkg:deb/debian/mistral@15.0.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mistral@15.0.0-1%3Fdistro=trixie
4
url pkg:deb/debian/mistral@20.0.0-2?distro=trixie
purl pkg:deb/debian/mistral@20.0.0-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mistral@20.0.0-2%3Fdistro=trixie
5
url pkg:deb/debian/mistral@22.0.0~rc1-3?distro=trixie
purl pkg:deb/debian/mistral@22.0.0~rc1-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mistral@22.0.0~rc1-3%3Fdistro=trixie
6
url pkg:deb/debian/mistral@22.0.0-1?distro=trixie
purl pkg:deb/debian/mistral@22.0.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mistral@22.0.0-1%3Fdistro=trixie
7
url pkg:pypi/mistral@7.0.1
purl pkg:pypi/mistral@7.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@7.0.1
Affected_packages
0
url pkg:deb/debian/mistral@2.0.0-2~bpo8%2B1
purl pkg:deb/debian/mistral@2.0.0-2~bpo8%2B1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-89jv-kym3-gqdh
1
vulnerability VCID-am12-sa1d-27ef
2
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mistral@2.0.0-2~bpo8%252B1
1
url pkg:deb/debian/mistral@3.0.0-4%2Bdeb9u1
purl pkg:deb/debian/mistral@3.0.0-4%2Bdeb9u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-89jv-kym3-gqdh
1
vulnerability VCID-am12-sa1d-27ef
2
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mistral@3.0.0-4%252Bdeb9u1
2
url pkg:pypi/mistral@0
purl pkg:pypi/mistral@0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@0
3
url pkg:pypi/mistral@0.0.1
purl pkg:pypi/mistral@0.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@0.0.1
4
url pkg:pypi/mistral@0.0.2
purl pkg:pypi/mistral@0.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@0.0.2
5
url pkg:pypi/mistral@0.0.3
purl pkg:pypi/mistral@0.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@0.0.3
6
url pkg:pypi/mistral@0.0.4
purl pkg:pypi/mistral@0.0.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@0.0.4
7
url pkg:pypi/mistral@0.1
purl pkg:pypi/mistral@0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@0.1
8
url pkg:pypi/mistral@0.1.1
purl pkg:pypi/mistral@0.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@0.1.1
9
url pkg:pypi/mistral@1.0.0.0b1
purl pkg:pypi/mistral@1.0.0.0b1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@1.0.0.0b1
10
url pkg:pypi/mistral@1.0.0.0b2
purl pkg:pypi/mistral@1.0.0.0b2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@1.0.0.0b2
11
url pkg:pypi/mistral@1.0.0.0b3
purl pkg:pypi/mistral@1.0.0.0b3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@1.0.0.0b3
12
url pkg:pypi/mistral@1.0.0.0rc1
purl pkg:pypi/mistral@1.0.0.0rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@1.0.0.0rc1
13
url pkg:pypi/mistral@1.0.0.0rc2
purl pkg:pypi/mistral@1.0.0.0rc2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@1.0.0.0rc2
14
url pkg:pypi/mistral@1.0.0
purl pkg:pypi/mistral@1.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@1.0.0
15
url pkg:pypi/mistral@1.0.1
purl pkg:pypi/mistral@1.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@1.0.1
16
url pkg:pypi/mistral@2.0.0.0b1
purl pkg:pypi/mistral@2.0.0.0b1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@2.0.0.0b1
17
url pkg:pypi/mistral@2.0.0.0b2
purl pkg:pypi/mistral@2.0.0.0b2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@2.0.0.0b2
18
url pkg:pypi/mistral@2.0.0.0b3
purl pkg:pypi/mistral@2.0.0.0b3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@2.0.0.0b3
19
url pkg:pypi/mistral@2.0.0.0rc1
purl pkg:pypi/mistral@2.0.0.0rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@2.0.0.0rc1
20
url pkg:pypi/mistral@2.0.0.0rc2
purl pkg:pypi/mistral@2.0.0.0rc2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@2.0.0.0rc2
21
url pkg:pypi/mistral@2.0.0.0rc3
purl pkg:pypi/mistral@2.0.0.0rc3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@2.0.0.0rc3
22
url pkg:pypi/mistral@2.0.0
purl pkg:pypi/mistral@2.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@2.0.0
23
url pkg:pypi/mistral@3.0.0.0b1
purl pkg:pypi/mistral@3.0.0.0b1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@3.0.0.0b1
24
url pkg:pypi/mistral@3.0.2
purl pkg:pypi/mistral@3.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@3.0.2
25
url pkg:pypi/mistral@4.0.0.0b1
purl pkg:pypi/mistral@4.0.0.0b1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@4.0.0.0b1
26
url pkg:pypi/mistral@4.0.0.0b2
purl pkg:pypi/mistral@4.0.0.0b2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@4.0.0.0b2
27
url pkg:pypi/mistral@4.0.0.0b3
purl pkg:pypi/mistral@4.0.0.0b3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@4.0.0.0b3
28
url pkg:pypi/mistral@4.0.0.0rc1
purl pkg:pypi/mistral@4.0.0.0rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@4.0.0.0rc1
29
url pkg:pypi/mistral@4.0.0.0rc2
purl pkg:pypi/mistral@4.0.0.0rc2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@4.0.0.0rc2
30
url pkg:pypi/mistral@4.0.0
purl pkg:pypi/mistral@4.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@4.0.0
31
url pkg:pypi/mistral@4.0.1
purl pkg:pypi/mistral@4.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@4.0.1
32
url pkg:pypi/mistral@4.0.2
purl pkg:pypi/mistral@4.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@4.0.2
33
url pkg:pypi/mistral@5.0.0.0b1
purl pkg:pypi/mistral@5.0.0.0b1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@5.0.0.0b1
34
url pkg:pypi/mistral@5.0.0.0b2
purl pkg:pypi/mistral@5.0.0.0b2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@5.0.0.0b2
35
url pkg:pypi/mistral@5.0.0.0b3
purl pkg:pypi/mistral@5.0.0.0b3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@5.0.0.0b3
36
url pkg:pypi/mistral@5.0.0.0rc1
purl pkg:pypi/mistral@5.0.0.0rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@5.0.0.0rc1
37
url pkg:pypi/mistral@5.0.0
purl pkg:pypi/mistral@5.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@5.0.0
38
url pkg:pypi/mistral@5.1.0
purl pkg:pypi/mistral@5.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@5.1.0
39
url pkg:pypi/mistral@5.2.0
purl pkg:pypi/mistral@5.2.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@5.2.0
40
url pkg:pypi/mistral@5.2.1
purl pkg:pypi/mistral@5.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@5.2.1
41
url pkg:pypi/mistral@5.2.2
purl pkg:pypi/mistral@5.2.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@5.2.2
42
url pkg:pypi/mistral@5.2.3
purl pkg:pypi/mistral@5.2.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@5.2.3
43
url pkg:pypi/mistral@5.2.4
purl pkg:pypi/mistral@5.2.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@5.2.4
44
url pkg:pypi/mistral@5.2.5
purl pkg:pypi/mistral@5.2.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@5.2.5
45
url pkg:pypi/mistral@5.2.6
purl pkg:pypi/mistral@5.2.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@5.2.6
46
url pkg:pypi/mistral@5.2.7
purl pkg:pypi/mistral@5.2.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@5.2.7
47
url pkg:pypi/mistral@5.2.8
purl pkg:pypi/mistral@5.2.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@5.2.8
48
url pkg:pypi/mistral@6.0.0.0b1
purl pkg:pypi/mistral@6.0.0.0b1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@6.0.0.0b1
49
url pkg:pypi/mistral@6.0.0.0b2
purl pkg:pypi/mistral@6.0.0.0b2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@6.0.0.0b2
50
url pkg:pypi/mistral@6.0.0.0b3
purl pkg:pypi/mistral@6.0.0.0b3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@6.0.0.0b3
51
url pkg:pypi/mistral@6.0.0.0rc1
purl pkg:pypi/mistral@6.0.0.0rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@6.0.0.0rc1
52
url pkg:pypi/mistral@6.0.0
purl pkg:pypi/mistral@6.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@6.0.0
53
url pkg:pypi/mistral@6.0.1
purl pkg:pypi/mistral@6.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@6.0.1
54
url pkg:pypi/mistral@6.0.2
purl pkg:pypi/mistral@6.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@6.0.2
55
url pkg:pypi/mistral@6.0.3
purl pkg:pypi/mistral@6.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@6.0.3
56
url pkg:pypi/mistral@6.0.4
purl pkg:pypi/mistral@6.0.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@6.0.4
57
url pkg:pypi/mistral@6.0.5
purl pkg:pypi/mistral@6.0.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@6.0.5
58
url pkg:pypi/mistral@6.0.6
purl pkg:pypi/mistral@6.0.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@6.0.6
59
url pkg:pypi/mistral@7.0.0.0b1
purl pkg:pypi/mistral@7.0.0.0b1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@7.0.0.0b1
60
url pkg:pypi/mistral@7.0.0.0b2
purl pkg:pypi/mistral@7.0.0.0b2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@7.0.0.0b2
61
url pkg:pypi/mistral@7.0.0.0b3
purl pkg:pypi/mistral@7.0.0.0b3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@7.0.0.0b3
62
url pkg:pypi/mistral@7.0.0.0rc1
purl pkg:pypi/mistral@7.0.0.0rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@7.0.0.0rc1
63
url pkg:pypi/mistral@7.0.0
purl pkg:pypi/mistral@7.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-am12-sa1d-27ef
1
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mistral@7.0.0
64
url pkg:rpm/redhat/instack-undercloud@8.4.6-6?arch=el7ost
purl pkg:rpm/redhat/instack-undercloud@8.4.6-6?arch=el7ost
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/instack-undercloud@8.4.6-6%3Farch=el7ost
65
url pkg:rpm/redhat/openstack-mistral@6.0.6-2?arch=el7ost
purl pkg:rpm/redhat/openstack-mistral@6.0.6-2?arch=el7ost
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openstack-mistral@6.0.6-2%3Farch=el7ost
66
url pkg:rpm/redhat/openstack-tripleo-common@8.6.6-16?arch=el7ost
purl pkg:rpm/redhat/openstack-tripleo-common@8.6.6-16?arch=el7ost
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openstack-tripleo-common@8.6.6-16%3Farch=el7ost
67
url pkg:rpm/redhat/openstack-tripleo-heat-templates@8.2.0-6.1?arch=el7ost
purl pkg:rpm/redhat/openstack-tripleo-heat-templates@8.2.0-6.1?arch=el7ost
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openstack-tripleo-heat-templates@8.2.0-6.1%3Farch=el7ost
68
url pkg:rpm/redhat/openstack-tripleo-image-elements@8.0.1-3?arch=el7ost
purl pkg:rpm/redhat/openstack-tripleo-image-elements@8.0.1-3?arch=el7ost
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openstack-tripleo-image-elements@8.0.1-3%3Farch=el7ost
69
url pkg:rpm/redhat/openstack-tripleo-puppet-elements@8.0.1-2?arch=el7ost
purl pkg:rpm/redhat/openstack-tripleo-puppet-elements@8.0.1-2?arch=el7ost
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openstack-tripleo-puppet-elements@8.0.1-2%3Farch=el7ost
70
url pkg:rpm/redhat/openstack-tripleo-ui@8.3.2-3?arch=el7ost
purl pkg:rpm/redhat/openstack-tripleo-ui@8.3.2-3?arch=el7ost
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openstack-tripleo-ui@8.3.2-3%3Farch=el7ost
71
url pkg:rpm/redhat/openstack-tripleo-validations@8.4.4-2?arch=el7ost
purl pkg:rpm/redhat/openstack-tripleo-validations@8.4.4-2?arch=el7ost
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openstack-tripleo-validations@8.4.4-2%3Farch=el7ost
72
url pkg:rpm/redhat/os-net-config@8.4.3-6?arch=el7ost
purl pkg:rpm/redhat/os-net-config@8.4.3-6?arch=el7ost
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/os-net-config@8.4.3-6%3Farch=el7ost
73
url pkg:rpm/redhat/os-refresh-config@8.3.1-0.20180918214345.4703b54?arch=el7ost
purl pkg:rpm/redhat/os-refresh-config@8.3.1-0.20180918214345.4703b54?arch=el7ost
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/os-refresh-config@8.3.1-0.20180918214345.4703b54%3Farch=el7ost
74
url pkg:rpm/redhat/puppet-cinder@12.4.1-3?arch=el7ost
purl pkg:rpm/redhat/puppet-cinder@12.4.1-3?arch=el7ost
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/puppet-cinder@12.4.1-3%3Farch=el7ost
75
url pkg:rpm/redhat/puppet-keystone@12.4.0-4?arch=el7ost
purl pkg:rpm/redhat/puppet-keystone@12.4.0-4?arch=el7ost
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/puppet-keystone@12.4.0-4%3Farch=el7ost
76
url pkg:rpm/redhat/puppet-manila@12.5.0-3?arch=el7ost
purl pkg:rpm/redhat/puppet-manila@12.5.0-3?arch=el7ost
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/puppet-manila@12.5.0-3%3Farch=el7ost
77
url pkg:rpm/redhat/puppet-neutron@12.4.1-4.ed05e01git?arch=el7ost
purl pkg:rpm/redhat/puppet-neutron@12.4.1-4.ed05e01git?arch=el7ost
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/puppet-neutron@12.4.1-4.ed05e01git%3Farch=el7ost
78
url pkg:rpm/redhat/puppet-nova@12.4.0-16?arch=el7ost
purl pkg:rpm/redhat/puppet-nova@12.4.0-16?arch=el7ost
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/puppet-nova@12.4.0-16%3Farch=el7ost
79
url pkg:rpm/redhat/puppet-octavia@12.4.0-8?arch=el7ost
purl pkg:rpm/redhat/puppet-octavia@12.4.0-8?arch=el7ost
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/puppet-octavia@12.4.0-8%3Farch=el7ost
80
url pkg:rpm/redhat/puppet-opendaylight@8.2.2-5.9126c8dgit?arch=el7ost
purl pkg:rpm/redhat/puppet-opendaylight@8.2.2-5.9126c8dgit?arch=el7ost
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/puppet-opendaylight@8.2.2-5.9126c8dgit%3Farch=el7ost
81
url pkg:rpm/redhat/puppet-ovn@12.4.0-2?arch=el7ost
purl pkg:rpm/redhat/puppet-ovn@12.4.0-2?arch=el7ost
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/puppet-ovn@12.4.0-2%3Farch=el7ost
82
url pkg:rpm/redhat/puppet-pacemaker@0.7.2-0.20180423212257?arch=el7ost
purl pkg:rpm/redhat/puppet-pacemaker@0.7.2-0.20180423212257?arch=el7ost
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/puppet-pacemaker@0.7.2-0.20180423212257%3Farch=el7ost
83
url pkg:rpm/redhat/puppet-swift@12.4.0-4?arch=el7ost
purl pkg:rpm/redhat/puppet-swift@12.4.0-4?arch=el7ost
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/puppet-swift@12.4.0-4%3Farch=el7ost
84
url pkg:rpm/redhat/puppet-tripleo@8.3.6-15?arch=el7ost
purl pkg:rpm/redhat/puppet-tripleo@8.3.6-15?arch=el7ost
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/puppet-tripleo@8.3.6-15%3Farch=el7ost
85
url pkg:rpm/redhat/python-os-brick@2.3.4-2?arch=el7ost
purl pkg:rpm/redhat/python-os-brick@2.3.4-2?arch=el7ost
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-os-brick@2.3.4-2%3Farch=el7ost
86
url pkg:rpm/redhat/python-tripleoclient@9.2.6-8?arch=el7ost
purl pkg:rpm/redhat/python-tripleoclient@9.2.6-8?arch=el7ost
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-vyg9-hnp3-wye9
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-tripleoclient@9.2.6-8%3Farch=el7ost
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16849.json
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16849.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-16849
reference_id
reference_type
scores
0
value 0.0014
scoring_system epss
scoring_elements 0.3362
published_at 2026-04-29T12:55:00Z
1
value 0.0014
scoring_system epss
scoring_elements 0.33706
published_at 2026-04-26T12:55:00Z
2
value 0.0014
scoring_system epss
scoring_elements 0.34113
published_at 2026-04-13T12:55:00Z
3
value 0.0014
scoring_system epss
scoring_elements 0.33728
published_at 2026-04-24T12:55:00Z
4
value 0.0014
scoring_system epss
scoring_elements 0.34101
published_at 2026-04-21T12:55:00Z
5
value 0.0014
scoring_system epss
scoring_elements 0.3415
published_at 2026-04-16T12:55:00Z
6
value 0.0014
scoring_system epss
scoring_elements 0.33875
published_at 2026-04-01T12:55:00Z
7
value 0.0014
scoring_system epss
scoring_elements 0.34212
published_at 2026-04-02T12:55:00Z
8
value 0.0014
scoring_system epss
scoring_elements 0.34245
published_at 2026-04-04T12:55:00Z
9
value 0.0014
scoring_system epss
scoring_elements 0.34108
published_at 2026-04-07T12:55:00Z
10
value 0.0014
scoring_system epss
scoring_elements 0.34151
published_at 2026-04-08T12:55:00Z
11
value 0.0014
scoring_system epss
scoring_elements 0.34179
published_at 2026-04-11T12:55:00Z
12
value 0.0014
scoring_system epss
scoring_elements 0.34137
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-16849
2
reference_url https://bugs.launchpad.net/mistral/+bug/1783708
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://bugs.launchpad.net/mistral/+bug/1783708
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16849
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16849
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16849
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16849
5
reference_url https://github.com/openstack/mistral
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/mistral
6
reference_url https://github.com/openstack/mistral/commit/2309e5265a1d5f28480ae872817b5de05f66e83c
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/mistral/commit/2309e5265a1d5f28480ae872817b5de05f66e83c
7
reference_url https://github.com/openstack/mistral/commit/c93b45a61f49d4633f76d8e117cd89063e7759c4
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/mistral/commit/c93b45a61f49d4633f76d8e117cd89063e7759c4
8
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/mistral/PYSEC-2018-92.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/mistral/PYSEC-2018-92.yaml
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1645334
reference_id 1645334
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1645334
10
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=912714
reference_id 912714
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=912714
11
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-16849
reference_id CVE-2018-16849
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2018-16849
12
reference_url https://github.com/advisories/GHSA-fqw7-c6vr-q29m
reference_id GHSA-fqw7-c6vr-q29m
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-fqw7-c6vr-q29m
13
reference_url https://usn.ubuntu.com/7465-1/
reference_id USN-7465-1
reference_type
scores
url https://usn.ubuntu.com/7465-1/
Weaknesses
0
cwe_id 200
name Exposure of Sensitive Information to an Unauthorized Actor
description The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
1
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
2
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
Exploits
Severity_range_score4.3 - 8.9
Exploitability0.5
Weighted_severity8.0
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-vyg9-hnp3-wye9